There's been a potentially serious vulnerability recently discovered in the Linux kernel, version 4.9 and above. It allows an attacker with relatively low bandwidth to mount a TCP based Denial of Service attack by forcing the kernel to do expensive out of order packet processing.
While there is no published exploit yet, I imagine it won't be long before there is, and I expect cryptocurrency networks are a prime target. I'm not entirely sure how big the impact is or what kind of bandwidth is required to cripple a modern multi core server, but expensive code paths like this are never good. Patches are starting to come out for major Linux distributions, so be sure to upgrade your kernel if you host a node or other publicly accessible service.
[link] [comments]
source https://www.reddit.com/r/btc/comments/955hbj/running_a_full_node_or_other_publicly_accessible/
No comments:
Post a Comment